Logo
  • Overview
  • Consent
  • Authenticate
  • Authorise
  • Consent Management
  • Notifications
Data Standards Body | CX Guidelines

CX Guidelines

Overview

Consent

Authenticate

Authorise

Consent Management

Notifications

Keep in touch

DSB Newsletter

Website use

Accessibility Statement

Copyright

Privacy

Disclaimer

In the spirit of reconciliation, the Data Standards Body acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their Elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples.

Consumer Experience (CX) Guidelines
/
Overview
/
CX Checklist
/
CX Guidelines
/
00. Authenticate - general

00. Authenticate - general

Checklist ref

2AU.00.32

Area
2AU. Redirect to Web with OTP
Wireframe ref

32

Type
Technical Standard
Requirement level
MUST NOT
Participant
Data Holder
Statement

The following credential constraints apply such that Authenticators: • MUST NOT permit Memorised Secrets defined by [DigitalID-Accreditation] to achieve 'LoA 2' (as a single factor of authentication only).

Reference

Security Profile, Credential Requirements, Restricted Credentials

Example

Authenticate: Redirect to Web with One Time Password

Version introduced
1.35.0
Date introduced

22 September 2025

Date modified

Status
Active